01642 06 11 11 Arrange Call

SQL Injection Vulnerability in EasyVista 2020.2.125.3 and 2022.1.109.0.03

CVE-2022-38490 · CRITICAL

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

CVE-2022-38490

An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 corrects this issue.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.